PT-2003-1640 · Apache · Apache+1
Published
2003-07-18
·
Updated
2021-06-06
·
CVE-2003-0460
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:P |
Name of the Vulnerable Software and Affected Versions:
Apache versions prior to 1.3.28
Description:
The issue affects the rotatelogs program, which does not properly handle certain control characters received over the pipe. This could allow remote attackers to cause a denial of service. Specifically, control characters such as 0x1A can cause the rotatelogs support program to quit logging and exit.
Recommendations:
For versions prior to 1.3.28, update to version 1.3.28 or later to resolve the issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Apache
Apache Http Server